HP UX Identity Security Software manual Nsslapd-rootdn Manager DN, Nsslapd-rootpw Root password

This attribute is used only for LDAPv2 clients that require attribute types to be returned with their RFC 1274 names. Set the value to on for those clients. The default is off.

2.3.1.86 nsslapd-rootdn (Manager DN)

This attribute sets the distinguished name (DN) of an entry that is not subject to access control restrictions, administrative limit restrictions for operations on the directory, or resource limits in general. There does not have to be an entry corresponding to this DN, and by default there is not an entry for this DN, thus values like cn=Directory Manager are acceptable.

For information on changing the root DN, see the "Creating Directory Entries" chapter in the HP-UX Directory Server administrator guide.

2.3.1.87 nsslapd-rootpw (Root password)

This attribute sets the password associated with the Manager DN. When the root password is provided, it is hashed according to the hashing method selected for the nsslapd-rootpwstorageschemeattribute. When viewed from the server console, this attribute shows the value *****. When viewed from the dse.ldif file, this attribute shows the hashing method followed by the hashed string of the password. The example shows the password as displayed in the dse.ldif file, not the actual password.

CAUTION:

When the root DN is configured at server setup, a root password is required. However, you can delete the root password from dse.ldif by directly editing the file. In this situation, the root DN obtains unauthenticated (anonymous) access only. When a root DN is configured for the database, always make sure that a root password is defined in dse.ldif. The pwdhash command-line utility can create a new root password. For more information, see “pwdhash (Prints encrypted passwords)”.

56 Core server configuration reference